#12123 Clear html tag characters to prevent XSS attacks

2023-09-26 09:37:48 +02:00 · 2023-09-26 09:37:48 +02:00 · bcecfbfdcc
parent fbeb616eb8
commit bcecfbfdcc
1 changed files with 2 additions and 0 deletions
--- a/pandora_console/godmode/reporting/visual_console_builder.php
+++ b/pandora_console/godmode/reporting/visual_console_builder.php
@ -164,6 +164,8 @@ switch ($activeTab) {
                $width = (int) get_parameter('width');
                $height = (int) get_parameter('height');
                $visualConsoleName = (string) get_parameter('name');
+                $visualConsoleName = str_replace('&lt;', '', $visualConsoleName);
+                $visualConsoleName = str_replace('&gt;', '', $visualConsoleName);
                $is_favourite  = (int) get_parameter('is_favourite_sent');
                $auto_adjust  = (int) get_parameter('auto_adjust_sent');